U.S. Patent Application Serial No. 10/693,172 

Amendments to the Claims: 

This listing of claims will replace all prior versions and listings of claims in the 
application. Please amend the claims as follows: 

Listing of Claims: 

1 . (Currently Amended) A computer-implemented method of sending an identity 
information document from an initiating system to an intended receiving system, the method 
comprising: 

presenting a list of identity information from a self-identity information store included in 
the initiating system for a principal using the initiating system to select 
information to include in a first [[the]] identity information document and to 
include in a second identity information document, wherein the first identity 
information document is based on a first [[the]] intended receiving system and the 
second identity information document is based on a second intended receiving 
system , the first intended receiving system being different from the second 
intended receiving system, and w herein the presenting the list of identity 
information for selection allows the principal to control the disclosure of identity 
information to the first and the second intended receiving systems; 

receiving a first selection of sel e cting identity information from the list of identity 
information from the self-identity information store stored in a memory for 
inclusion in the first identity information document, wherein the first selected 
identity information comprises a first subset of identity information relating to the 
principal in the self-identity information storei and wherein the first subset of 
identity information is specific to the first intended receiving system; 

receiving a second selection of identity information from the list of identity information 
from the self-identity information store stored in memory for inclusion in the 
second identity information document, wherein the second selected identity 
information comprises a second subset of identity information relating to the 
principal in the self-identity information store, and wherein the second subset of 
identity information is specific to the second intended receiving system and is 
different from the first subset of identity information: 
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reading the first and the second selected identity information from the self-identity 

information store included in the initiating system ; 
generating the first identity information document to include the first selected identity 

information and at least a first key, the first identity information document signed 

using a second key associated with the first key in the first identity information 

document; and 

sending the first identity information document to the first intended receiving system. 

2. (Currently Amended) The method of claim 1 , wherein the receiving a first selection of 
sel e cting identity information comprises receiving a selection of the first s e lecting a 
subset of identity information from the self-identity information store based on user input 
from a Graphical User Interface (GUI). 

3 . (Currently Amended) The method of claim 1 , wherein the receiving a first selection of 
s e l e cting identity information comprises receiving a selection of selecting a 
predetermined subset of information from the self-identity information store. 

4. (Currently Amended) The method of claim 1, wherein generating [[an]] the first identity 
information document comprises encoding the first selected identification information in 
an extensible Mark-up Language (XML) document. 

5. (Currently Amended) The method of claim 1, wherein the first selected identity 
information comprises identity claims of the principal originating the first identity 
information document. 

6. (Currently Amended) The method of claim 1 , wherein the first selected identity 
information comprises use policies for defining uses to which the contents of the identity 
information may be put. 

7. (Currently Amended) A computer-implemented method of receiving an identity 
information document at a recipient from an initiating system, the method originator devic e 
comprising: 
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receivin g, at a first recipient, a signed first identity information document from the 
initiating system originator , wherein the first identity information document 
contains selected identity information comprising a first subset of identity 
information relating to a principal t h e originator and selected from a self-identity 
information store included in the initiating system, and wherein the first subset of 
identity information is specific to the first recipien t, and wherein the first subset of 
identity information is different from a second subset of identity information, the 
second subset of identity information being contained in a second identity 
information document intended for a second recipient ; 

determining whether the first subset of identity information in the first identity 
information document is reliable; 

saving the first subset of identity information in a recognized identity information store 
located at the first recipient and stored in a memory if the first subset of identity 
information is determined to be reliable; 

determining whether to verify the first subset of identity information if the first subset of 
identity information is not reliable; and 

if the first subset of identity information is not reliable, saving the first subset of identity 
information in the recognized identity information store at the first recipient with 
a flag indicating the first subset of identity information is not reliable. 



8. (Currently Amended) The method of claim 7, further comprising: 

responsive to determining to verify the first subset of identity information, retrieving an 
Identification Recognition Number (IRN) from the initiating system originator of 
the first identity information document, determining whether the IRN is correct 
and, responsive to the IRN being correct, saving the first subset of identity 
information in the recognized identity information store. 



9. (Currently Amended) The method of claim 7, wherein determining whether the first 

subset of identity information is reliable is based on a user input through a graphical user 
interface. 
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10. (Currently Amended) The method of claim 7, wherein determining whether to verify the 
first subset of identity information is based on a user input through a graphical user 
interface. 

1 1 . (Currently Amended) A system to send an identity information document comprising: 
a processor; 

a communication channel connected with the processor; and 

a memory coupled with and readable by the processor, the memory containing a series of 
instructions that, when executed by the processor, cause the processor to; 

select identity information from a self-identity information store included 
in an initiating system for inclusion in [[the]] a first identity information 
document, wherein the selected identity information comprises a predetermined 
first subset of identity information relating to a principal in the self-identity 
information store and wherein the predetermined first subset of identity 
information is specific to [[an]] a first intended recipient and is automatically 
selected for inclusion in the first identity information documen t, and wherein a 
predetermined second subset of identity information relating to the principal in 
the self-identity information store is specific to a second intended recipient, the 
second subset of identity information being different from the first subset of 
identity information ; 

read the first subset of s elected identity information from the self-identity 
information store included in the initiating system ; 

generate the first identity information document to include the first subset 
of s e l e cted identity information and at least a first key, the first identity 
information document signed using a second key paired with the first key; and 

send the first identity information document to the first intended recipient 
connected to the communication channel to establish an identity of the principal at 
the first recipient. 

12. (Currently Amended) The system of claim 11, wherein the selecting identity information 
for inclusion in a first identity information document comprises selecting [[a]] the first 



5 



U.S. Patent Application Serial No. 10/693,172 

subset of identity information from the self-identity information store based on user input 
from a Graphical User Interface (GUI). 



13. (Cancelled) 



14. (Currently Amended) The system of claim 1 1 , wherein the g enerating [[an]] the first 
identity information document comprises encoding the first subset of selected 
identification information in an extensible Mark-up Language (XML) document. 

15. (Currently Amended) The system of claim 1 1 , wherein the first subset of selected 
identity information comprises identity claims of the principal originating the first 
identity information document. 

16. (Currently Amended) The system of claim 1 1 , wherein the first subset of s elected 
identity information comprises use policies for defining uses to which the contents of the 
first subset of identity information may be put. 



1 7. (Currently Amended) A system to receive an identity information document at a 
recipient from an initiating system originator for use in future recognition of a principal fee 
originator comprising: 
a processor; 

a communication channel connected with the processor; and 

a memory coupled with and readable by the processor, the memory containing a series of 
instructions that, when executed by the processor, cause the processor to: 

receive , at a first recipient, a signed first identity information document 
from the initiating system an originator , wh e r e in the signed first identity 
information document containing contains selected identity information 
comprising a first subset of identity information relating to the principal originator 
in [[the]] a self-identity information store included in the initiating system, [[and]] 
wherein the first subset of identity information is specific to the first recipient, and 
wherein a second subset of identity information relating to the principal in the 
self-identity information store is specific to a second intended recipient, the 
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second intended recipient being different from the first intended recipient, and the 
second subset of identity information being different from the first subset of 
identity information; 

determine whether the first subset of identity information in the first 
identity information document is reliable[[,]]; 

determine whether to verify the first subset of identity information if the 
identity information is not reliable[[,]]; [[and]] 

save the first subset of identity information in a recognized identity 
information store located at the first recipient if the first subset of identity 
information is determined to be reliable[[,]]i and 

if the first subset of identity information is not reliable, save the first 
subset of identity information in the recognized identity information store at the 
first recipient with a flag indicating the first subset of identity information is not 
reliable, the recognized identity information store being used for future 
recognition of the principal originator . 

18. (Currently Amended) The system of claim 1 7, further comprising: 

responsive to determining to verify the first subset of identity information, receiving an 
Identification Recognition Number (IRN) from the initiator of the first identity 
information document, determining whether the IRN is correct and, responsive to 
the IRN being correct, saving the first subset of identity information in the 
recognized identity information store. 

19. (Currently Amended) The system of claim 1 8, wherein the determining whether the first 
subset of identity information is reliable is based on a user input through a graphical user 
interface. 

20. (Currently Amended) The system of claim 1 8, wherein the determining whether to verify 
the first subset of identity information is based on a user input through a graphical user 
interface. 
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2 1 . (Currently Amended) A computer readable storage medium encoding a computer 

program of instructions for executing a computer process for identity recognition, said 
computer process comprising: 

presenting a list of identity information from a self-identity information store 
included in an initiating system for a principal using [[an]] die initiating system to select 
information to include in [[an]] a first identity information document and to include in a 
second identity information document, wherein the first identity information document is 
based on [[an]] a first intended recipient and the second identity information document is 
based on a second intended recipient, the first intended recipient being different from the 
second intended recipient , and wherein the presenting the list of identity information for 
selection allows the principal to control the disclosure of identity information to the first 
and the second intended recipients; 

receiving a first selection of s e lecting identity information from the list of identity 
information from the self-identity information store stored in a memory for inclusion in 
[[a]] die first identity information documen t, wherein the first selected identity 
information comprises a first subset of identity information rela ting to the principal aad-a 
second identity information docum e nt, wh e rein the s e l e ct e d identity information 
comprises first and second subs e ts of id e ntity information relating to th e principal in the 
self-identity information sto^ and wherein the first subset of identity information is 
specific to [[a]] the first intended recipient and th e second subs e t of identity information 
is specific to a second recipient that is different from the first recipient ; 

receiving a second selection of identity information from the list of identity 
information from the self-identity information store stored in memory for inclusion in the 
second identity information document, wherein the second selected identity information 
comprises a second subset of identity information relating to the principal in the self- 
identity information store, and wherein the second subset of identity information is 
specific to the second intended receiving system and is different from the first subset of 
identity information; 

reading the first and the second selected identity information from the self- 
identity information store included in the initiating system ; 

generating the first and second identity information document documents to 
include the first selected identity information and at least a first public key, the first 
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identity information document documents signed with a second private key associated 
with the first -public key in the first identity information document; and 



sending the first identity information document to the first recipient to establish an 
identity of the principal at the first recipient; 

generating the second identity information document to include the second 
selected identity information and a digital signature; and 

sending the second identity information document to the second recipient to 
establish an identity of the principal at the second recipient. 

22. (Currently Amended) The computer readable storage medium of claim 2 1 , wherein the 
receiving a first selection of s e l e cting identity information comprises receiving a 
selection of the first s e lecting a subset of identity information from the self-identity 
information store based on user input from a Graphical User Interface (GUI). 

23. (Cancelled) 

24. (Currently Amended) The computer readable storage medium of claim 21 , wherein 
generating [[an]] the first identity information document comprises encoding the first 
selected identification information in an extensible Mark-up Language (XML) 
document. 

25. (Currently Amended) The computer readable storage medium of claim 21 , wherein the 
first selected identity information comprises identity claims of the principal originating 
the first identity information document. 

26. (Currently Amended) The computer readable storage medium of claim 2 1 , wherein the 
first selected identity information comprises use policies for defining uses to which the 
contents of the identity information may be put. 

27. (Cancelled) 

28. (Cancelled) 
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29. (Cancelled) 

30. (Cancelled) 



